Solutions for Industrial Computing Blog

Solutions for Industrial Computing

The Solutions for Industrial Computing Blog is the place for conversation and discussion about industrial computers, systems and controllers; communications and connectivity; software and control; and power strategies. Here, you'll find everything from application ideas, to news and industry trends, to hot topics and cutting edge innovations.
Previous in Blog: Fake Chips and Real Risks   Next in Blog: Will HMIs Drive Design?
Close

Comments Format:






Change Mode
Close

Subscribe to Discussion:

CR4 allows you to "subscribe" to a discussion
so that you can be notified of new comments to
the discussion via email.

Close

Rating Vote:







Add Vote
5 comments
Rate Comments: Nested

Can They Outsmart Smart Grid Security?

Posted February 24, 2011 8:30 AM by embeddedreporter
Pathfinder Tags: air conditioner appliances refrigerator Smart grid system security

This will be quick but thought provoking, I hope. I was on the phone with Mike Ahmadi of Granite Key and Jim McElroy of Green Hills Software this morning, and one thing we discussed points out how little we've actually thought through Smart Grid security so far.

Let's suppose the big hitter on electricity in your house, like mine, is the air conditioner. Let's also suppose it's connected to the smart meter via a network so that the electric utility can dial things back a couple degrees at peak. What if an aspiring EE type were somehow able to "root" the air conditioner's code and have it report back as a refrigerator, or some other less consumptive device, and get around the management policy? Or magically only report 10% of its actual use? Interesting challenge for a utility to be able to spot that kind of behavior.

OK, it's a bit black hat, and yes the vast majority of consumers wouldn't have this capability, and even people with capability most likely wouldn't have time or want to mess with their warranty. OK. But what if? The point here is don't overlook security in connected M2M devices, no matter how mundane that device might seem today, because tomorrow someone might want to do something out of the ordinary with it, and you might have to be the one to spot it.

Reply

Interested in this topic? By joining CR4 you can "subscribe" to
this discussion and receive notification when new comments are added.

Good Answers:

These comments received enough positive votes to make them "good answers".
Anonymous Poster
#1

Re: Can They Outsmart Smart Grid Security?

02/24/2011 5:17 PM

Ya sure, ya betcha--just hack into the "smart meter," say that your usage is zero, and weasel out of your bill altogether.... (For a while, maybe.)

ξ
Reply
Lynn.Wallace
Guru

Join Date: Dec 2009
Posts: 581
Good Answers: 15
#2

Re: Can They Outsmart Smart Grid Security?

02/25/2011 9:54 AM

My reaction is, if this is the biggest security problem we have, we should be very happy indeed. But then, is there actual destructive potential in (largely theoretical) smart grid security holes? Short of a STUXNet infection that could take down all my nuclear centrifuges, none come to mind.

__________________
 Ignorance is no sin. Willful ignorance is unforgiveable.
Reply
2
cwarner7_11
Guru
Panama - Member - New Member Hobbies - CNC - New Member Engineering Fields - Marine Engineering - New Member Engineering Fields - Retired Engineers / Mentors - New Member

Join Date: Dec 2006
Location: Panama
Posts: 4273
Good Answers: 213
#3

Re: Can They Outsmart Smart Grid Security?

02/25/2011 10:04 AM

If you have a "Smart Grid", and especially if you make wild claims about how secure it is, there will be people out there motivated to hack it just to prove that it can be done. Once they prove that it can be done, the bad guys will be right on their heels, learning how to disrupt the entire national grid, either for kicks or for more malevolent purposes...

This idea of a "smart grid" doesn't sound so smart to me...
Reply Good Answer (Score 2)
No more Good Answers.
Emjay4119
Guru

Join Date: Dec 2005
Location: Queensland Coalfields Australia.
Posts: 697
Good Answers: 11
#4
In reply to #3

Re: Can They Outsmart Smart Grid Security?

02/26/2011 3:11 AM

How right you are.

I'll give you an anecdote from the past that illustrates the exact point. Load control has been available since at least WW2 via ripple frequency devices that can turn off connected load, or, in the case of air raid sirens, turn them on. Multiple tarrifs can be controlled with varying guaranteed minimun supply hours. At least 400 channels have traditionally been available, modern bandwidth control could yield 10 times that number.

The technology in my neck of the woods has been known as Zelleweiger from the manufacturer of the relays. The old fashioned way to "hack" these devices was (theoretically at least) fairly simple. Each relay contained a fuse and enterprising individuals arranged to cause these to blow while the relay was in the closed position. Connected load is charged at 1/3 discount for the privelige of being able to turn it off, so with the doctored relay it was (is) cheap power that doesn't get turned off.

To the present. Hackers seem to have a high opinion of themselves to the point of if it can be done it will be done. Just look at Julian Arse Strange and his Pricky Freaks, fools will even applaud the destruction they create.

Call me old fashioned but with how effective (apart from the minor item above) ripple control is, and the capacity it has for expansion, I fail to see any advantage in complicating the issue further.

The event that led to doctoring of the relays was the coal and power industry strikes in the 70s, people soon get jack of no hot water. It was a case of anarchists turning ordinary people into anarchists. Can you see technology changing that?
Reply
Lynn.Wallace
Guru

Join Date: Dec 2009
Posts: 581
Good Answers: 15
#5

Re: Can They Outsmart Smart Grid Security?

02/28/2011 9:22 AM

Having thought about it, the biggest security risk a smart grid imposes is through complacency and convenience. Just because it's there, we'll re-task it for whatever comes to mind at the time. Eventually, you find for example that the hotline between Washington and Moscow and Beijing happens to rely on part of the smart grid in the US or Finland. Or your bank account info starts flowing through your unencrypted gas meter just because it seemed expedient to someone at some time.

__________________
 Ignorance is no sin. Willful ignorance is unforgiveable.
Reply
Reply to Blog Entry
Have a Different Question?
5 comments

Good Answers:

These comments received enough positive votes to make them "good answers".
Copy to Clipboard

Users who posted comments:

Anonymous Poster (1); cwarner7_11 (1); Emjay4119 (1); Lynn.Wallace (2)

Previous in Blog: Fake Chips and Real Risks   Next in Blog: Will HMIs Drive Design?
You might be interested in: Signal Conditioner Chips, Smart Cameras

Advertisement

Got Something to Say?
Ask a Question
Start a Discussion

Search this Section
Communications & Electronics:
Go

Search this Blog
Solutions for Industrial Computing:
Go

Recent Blog Entries

CR4 Sections
Aerospace
BioMech & BioMed
Chemical & Material Science
Civil Engineering
Communications & Electronics
Education and Engineering Careers
Electrical Engineering
General Discussion
Instrumentation
Manufacturing
Mechanical Engineering
New Technologies & Research
Software & Programming
Sustainable Engineering
Transportation

Site Directories
Forum Directory
Blog Directory
User Group Directory
RSS Feeds

CR4 Rules of Conduct
CR4 FAQ
Site Glossary

Who's Online (95 right now)
Show Members
Advertisement